Explanation:
The correct IAM permissions needed to create and delete branches in AWS CodeCommit, while adhering to the principle of least privilege, are 'codecommit:CreateBranch' and 'codecommit:DeleteBranch'. These permissions allow the user to specifically perform the actions required without granting broader access than necessary. Therefore, the correct answer is option A.
Ultimate access to all questions.
No comments yet.
A developer using SSH to access AWS CodeCommit requires permissions to create and delete branches. What IAM permissions should be granted to adhere to the principle of least privilege?
A
codecommit:CreateBranch
B
codecommit:Put*
C
codecommit:Update*
D
codecommit:*